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In the Claims: 

Please amend Claims 1, 8, 13, 15, 20, 21, 24, 26, 33, 38, 45, and 48 as shown below. 
Applicant respectfully reserves the right to prosecute any originally presented claims in a continuing 
or future application. 

1 . (Currently Amended) A system for single security administration comprising: 

a first server that includes an LDAP authentication server , wherein the first server holds 
information of group and access control list ; 

a second server that includes an embedded LDAP server; 

a single security data repository that resides in the second server and provides to the 
second server user security information associated with both the first server and the second server; 

a default security plugin at said first server that receives authentication requests from clients 
and forwards them to said LDAP authentication server; and, 

wherein, in response to receiving a request for authentication from a client, the system 
initiates an LDAP session between said first server and said second server, passes query 
information from said LDAP authentication server to said embedded LDAP server, receives 
corresponding user information, and creates a token that reflects an authentication result that can 
be used by said client. 

2. (Original) The system of claim 1 wherein the system checks a user profile database or user 
profile configuration information to determine where the user security information is stored. 

3. (Original) The system of claim 1 wherein said first server is a WebLogic server. 

4. (Original) The system of claim 1 wherein said second server is a Tuxedo server. 

5. (Original) The system of claim 1 wherein said first server is a WebLogic server, and said 
second server is a Tuxedo server. 
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6. (Original) The system of claim 1 wherein said client is a Tuxedo client and said request is a 
tpinit call. 

7. (Original) The system of claim 1 wherein said query information is query user information that 
specifies a particular user or group of users. 

8. (Currently Amended) The system of claim 1 wherein the system includes a plurality of 
servers,. 

9. (Original) The system of claim 8 wherein at least two of said plurality of servers include an 
LDAP authentication server. 

1 0. (Original) The system of claim 1 , further comprising a user information cache that caches a 
copy of said user information. 

11. (Original) The system of claim 1 wherein the system is scalable to include multiple LDAP 
authentication servers and/or multiple embedded LDAP servers. 

12. (Original) The system of claim 1 wherein at least one of said servers include a console 
program for administering the security of the system. 

1 3. (Currently Amended) A method for providing single security administration comprising the 
steps of: 

issuing a call to an LDAP authentication server at a first serve r, wherein the first server 
holds information of group and access control list ; 

passing query user information from said LDAP authentication server to an embedded 
LDAP server at a second serve r, wherein the second server includes a single security data 
repository that provides the second server user security information associated with both the first 
server and the second server ; 

returning corresponding user information to said LDAP authentication server; and, 
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providing an authentication token for use by the client. 

14. (Original) The method of claim 13, further comprising the step, prior to issuing a call, of 
allowing a client to access a default security plugin. 

1 5. (Currently Amended) The method of claim 1 3 where i n the system , further comprising : 

checks checking a user profile database or user profile configuration information to 
determine where the user security information is stored. 

16. (Original) The method of claim 13 wherein said first server is a WebLogic server. 

17. (Original) The method of claim 13 wherein said second server is a Tuxedo server. 

18. (Original) The method of claim 13 wherein said first server is a WebLogic server, and said 
second server is a Tuxedo server. 

19. (Original) The method of claim 13 wherein said client is a Tuxedo client and said request is 
a tpinit call. 

20. (Currently Amended) The method of claim 13 wherein said query user information is query 
user information that specifies a particular user or group of users. 

21 . (Currently Amended) The method of claim 1 3 where i n the system , further comprising : 

i nc l udes including a plurality of servers,, 

22. (Original) The method of claim 21 wherein at least two of said plurality of servers include an 
LDAP authentication server. 
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23. (Original) The method of claim 13, further comprising a user information cache that caches 
a copy of said user information. 

24. (Currently Amended) The method of claim 13 where i n the system , further comprising : 

[[is]] being scalable to include multiple LDAP authentication servers and/or multiple 
embedded LDAP servers. 

25. (Original) The method of claim 13 wherein at least one of said servers include a console 
program for administering the security of the system. 

26. (Currently Amended) A system for single security administration comprising: 

an enterprise server that holds information of group and access control list; 
an application server that includes an embedded LDAP server; 

a single security data repository that resides in the application server and provides the 
application server with user security information that is associated with both the enterprise server 
and the application server; and, 

wherein, in response to receiving a request for authentication from a client of another the 
enterprise server, the system initiates an LDAP session between said application server and said 
other enterprise server, receives query information from an LDAP authentication server at said 
other enterprise server, creates a token that reflects an authentication result that can be used by 
said client, and communicates said token to the other enterprise server. 

27. (Original) The system of claim 26 wherein the system checks a user profile database or user 
profile configuration information to determine where the user security information is stored. 

28. (Original) The system of claim 26 wherein said application server is a WebLogic server. 

29. (Original) The system of claim 26 wherein said other enterprise server is a Tuxedo server. 
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30. (Original) The system of claim 26 wherein said application server is a WebLogic server, and 
said second other enterprise is a Tuxedo server. 

31 . (Original) The system of claim 26 wherein said client is a Tuxedo client and said request is a 
tpinit call. 

32. (Original) The system of claim 26 wherein said query information is query user information that 
specifies a particular user or group of users. 

33. (Currently Amended) The system of claim 26 wherein the system includes a plurality of 
servers.. 

34. (Original) The system of claim 33 wherein at least two of said plurality of servers include an 
LDAP authentication server. 

35. (Original) The system of claim 26, further comprising a user information cache that caches a 
copy of said user information. 

36. (Original) The system of claim 26 wherein the system is scalable to include multiple LDAP 
authentication servers and/or multiple embedded LDAP servers. 

37. (Original) The system of claim 26 wherein at least one of said servers include a console 
program for administering the security of the system. 

38. (Currently Amended) A method for single security administration comprising: 

holding information of group and access control list at an enterprise server; 

receiving, at an LDAP server at an application server, a request for authentication from a 
client of another the enterprise serve r, wherein the application server connects to a single security 
data repository for user security information associated with both the enterprise server and the 
application server ; 
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initiating an LDAP session between said application server and said other enterprise 

server; 

receiving query information from an LDAP authentication server at said other enterprise 
server; and, 

creating a token that reflects an authentication result that can be used by said client; and, 
communicating said token to said other enterprise server. 

39. (Original) The method of claim 38 wherein the system checks a user profile database or user 
profile configuration information to determine where the user security information is stored. 

40. (Original) The method of claim 38 wherein said application server is a WebLogic server. 

41. (Original) The method of claim 38 wherein said other enterprise server is a Tuxedo server. 

42. (Original) The method of claim 38 wherein said application server is a WebLogic server, and 
said second other enterprise is a Tuxedo server. 

43. (Original) The method of claim 38 wherein said client is a Tuxedo client and said request is 
a tpinit call. 

44. (Original) The method of claim 38 wherein said query information is query user information 
that specifies a particular user or group of users. 

45. (Currently Amended) The method of claim 38 where i n the system , further comprising : 

i nc l udes including a plurality of servers 

46. (Original) The method of claim 45 wherein at least two of said plurality of servers include an 
LDAP authentication server. 
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47. (Original) The method of claim 38, further comprising a user information cache that caches 
a copy of said user information. 

48. (Currently Amended) The method of claim 38 where i n the system , further comprising : 

[[is]] being scalable to include multiple LDAP authentication servers and/or multiple 
embedded LDAP servers. 

49. (Original) The method of claim 38 wherein at least one of said servers include a console 
program for administering the security of the system. 
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